IETF Logo Mail Archive

Re: [homenet] HNCP Security & Trust Draft

Michael Thomas <mike@mtcc.com> Tue, 14 October 2014 15:34 UTC

Return-Path: <mike@mtcc.com>
X-Original-To: homenet@ietfa.amsl.com
Delivered-To: homenet@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5B5411A8946 for <homenet@ietfa.amsl.com>; Tue, 14 Oct 2014 08:34:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.888
X-Spam-Level:
X-Spam-Status: No, score=-1.888 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_ADSP_ALL=0.8, RP_MATCHES_RCVD=-0.786, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BzRnOXzlVkz4 for <homenet@ietfa.amsl.com>; Tue, 14 Oct 2014 08:34:53 -0700 (PDT)
Received: from mtcc.com (mtcc.com [50.0.18.224]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 756851A8791 for <homenet@ietf.org>; Tue, 14 Oct 2014 08:34:53 -0700 (PDT)
Received: from takifugu.mtcc.com (takifugu.mtcc.com [50.0.18.224]) (authenticated bits=0) by mtcc.com (8.14.7/8.14.7) with ESMTP id s9EFYq55028726 for <homenet@ietf.org>; Tue, 14 Oct 2014 08:34:53 -0700
Message-ID: <543D429C.5020302@mtcc.com>
Date: Tue, 14 Oct 2014 08:34:52 -0700
From: Michael Thomas <mike@mtcc.com>
User-Agent: Mozilla/5.0 (X11; Linux i686 on x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.1.2
MIME-Version: 1.0
To: homenet@ietf.org
References: <542EED2F.6000501@openwrt.org> <1413272248.3200.1.camel@openwrt.org>
In-Reply-To: <1413272248.3200.1.camel@openwrt.org>
Content-Type: text/plain; charset="windows-1252"; format="flowed"
Content-Transfer-Encoding: 7bit
Archived-At: http://mailarchive.ietf.org/arch/msg/homenet/pliIfbqQqJwFtBurGcivBqRoxHE
Subject: Re: [homenet] HNCP Security & Trust Draft
X-BeenThere: homenet@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: <homenet.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/homenet>, <mailto:homenet-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/homenet/>
List-Post: <mailto:homenet@ietf.org>
List-Help: <mailto:homenet-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/homenet>, <mailto:homenet-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 14 Oct 2014 15:34:54 -0000

1) i was hopeful that this might be a threats kind of draft which is 
sorely needed. i was disappointed.
2) there is a huge set of possibilities in between PSK and PKI in 
section 6.1 and 6.2. see #1.

Mike


On 10/14/2014 12:37 AM, Steven Barth wrote:
> I just pushed a new revision of the draft.
> http://tools.ietf.org/html/draft-barth-homenet-hncp-security-trust-01
>
>
> Most notable changes:
>
> * Some clarifications to the consensus based trust scheme
> * PSK-management now supports key-derivation for different protocols
> (IGPs, ...)
> * Underlying crypto scheme changed to DTLS for now
> * Some spellchecking, idnits etc.
>
>
>
> Am Freitag, den 03.10.2014, 20:38 +0200 schrieb Steven Barth:
>> Hi everyone,
>>
>> I took the last few days to gather some thoughts about threats, security
>> and trust management
>> in the context of HNCP and wrote it up under
>> http://tools.ietf.org/html/draft-barth-homenet-hncp-security-trust-00
>>
>> Quick overview over the topics:
>> * Homenet Border
>> * HNCP Payload Security
>> * Trust Management
>> * IGP-Considerations
>>
>> Please note that this draft is in a very early stage so please help to
>> make additions, provide feedback
>> and point out mistakes.
>>
>>
>> Regards,
>>
>> Steven
>>
>>
>> _______________________________________________
>> homenet mailing list
>> homenet@ietf.org
>> https://www.ietf.org/mailman/listinfo/homenet
>
> _______________________________________________
> homenet mailing list
> homenet@ietf.org
> https://www.ietf.org/mailman/listinfo/homenet

v2.23.0 | Report a Bug | By Email